Oval Definition:oval:org.mitre.oval:def:23523
Revision Date:2014-05-26Version:24
Title:ELSA-2011:0791: tomcat6 security and bug fix update (Moderate)
Description:Multiple cross-site scripting (XSS) vulnerabilities in the HTML Manager Interface in Apache Tomcat 5.5 before 5.5.32, 6.0 before 6.0.30, and 7.0 before 7.0.6 allow remote attackers to inject arbitrary web script or HTML, as demonstrated via the display-name tag.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-3718
CVE-2010-4172
CVE-2011-0013
ELSA-2011:0791-01
Platform(s):Oracle Linux 6
Product(s):tomcat6
Definition Synopsis
  • Oracle Linux 6.x
  • AND rpm test
  • tomcat6-jsp-2.1-api is earlier than 0:6.0.24-33.el6
  • OR tomcat6-webapps is earlier than 0:6.0.24-33.el6
  • OR tomcat6-lib is earlier than 0:6.0.24-33.el6
  • OR tomcat6-docs-webapp is earlier than 0:6.0.24-33.el6
  • OR tomcat6-javadoc is earlier than 0:6.0.24-33.el6
  • OR tomcat6-el-2.1-api is earlier than 0:6.0.24-33.el6
  • OR tomcat6-admin-webapps is earlier than 0:6.0.24-33.el6
  • OR tomcat6-servlet-2.5-api is earlier than 0:6.0.24-33.el6
  • OR tomcat6 is earlier than 0:6.0.24-33.el6
    • BACK